Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/74e17f-f9f4-4789-92b7-9dd6e88fcc8d/1/Rq-rAk5RWXscYSwMAl_q3giX08s.roa
File: Rq-rAk5RWXscYSwMAl_q3giX08s.roa (raw, json)
Hash identifier: Hgtz5EfDhmn8tCQhPlm2ZF8nrn6faUoaqGvWwj8cDNw=
Subject key identifier: 46:AF:AB:02:4E:51:59:7B:1C:61:2C:0C:02:5F:EA:DE:08:97:D3:CB
Certificate issuer: /CN=b91b91504983091506a1a944457a4558b94dab7f
Certificate serial: 3946B8B9
Authority key identifier: B9:1B:91:50:49:83:09:15:06:A1:A9:44:45:7A:45:58:B9:4D:AB:7F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uRuRUEmDCRUGoalERXpFWLlNq38.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/74e17f-f9f4-4789-92b7-9dd6e88fcc8d/1/Rq-rAk5RWXscYSwMAl_q3giX08s.roa
Signing time: Tue 03 May 2022 13:26:10 +0000
ROA not before: Tue 03 May 2022 13:26:10 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48205
IP address blocks: 178.175.166.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 960936121 (0x3946b8b9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b91b91504983091506a1a944457a4558b94dab7f
Validity
Not Before: May 3 13:26:10 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=46afab024e51597b1c612c0c025feade0897d3cb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:c0:7f:6b:b0:fc:dc:98:00:65:5f:cf:d7:fa:
ea:80:ab:30:30:ce:06:ff:88:d1:c1:d5:51:f8:29:
f7:53:92:1d:0b:29:f6:de:ca:4c:c3:47:6a:bb:c0:
02:6e:f2:10:13:f0:bf:52:9b:9e:18:fa:d5:d4:3f:
5a:34:6f:42:e6:b1:71:bc:ab:98:bb:00:a1:ad:fd:
e5:5c:f7:aa:6f:67:49:7a:bf:4f:19:60:6c:1b:d2:
04:6c:ba:9f:89:d9:d7:50:e6:65:4a:99:5e:e2:44:
bd:6f:1d:61:96:c4:9b:8f:dd:c8:23:25:b7:b9:b0:
c1:49:1f:fa:a1:53:ce:d8:db:dc:92:c3:84:78:f1:
cc:45:65:cc:2b:08:d4:a1:bd:06:13:9c:ab:00:02:
2e:f5:cc:d5:ee:6a:2a:6d:a5:04:54:b9:65:b0:82:
50:50:0a:9e:79:80:6d:de:df:4b:e4:31:45:f1:25:
f0:99:56:f4:d9:16:17:5d:0b:5d:3f:60:dc:ad:a5:
9c:4a:93:b0:21:4f:e2:9e:bc:93:21:9e:36:85:15:
e4:bc:51:9a:76:d1:2e:4b:0d:3a:66:0e:d1:50:e1:
a0:82:4f:b8:e4:be:85:25:f6:62:3a:d8:0f:60:fe:
87:b4:d7:bd:e1:e9:90:ba:22:7a:83:3e:63:7d:14:
07:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:AF:AB:02:4E:51:59:7B:1C:61:2C:0C:02:5F:EA:DE:08:97:D3:CB
X509v3 Authority Key Identifier:
keyid:B9:1B:91:50:49:83:09:15:06:A1:A9:44:45:7A:45:58:B9:4D:AB:7F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uRuRUEmDCRUGoalERXpFWLlNq38.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/74e17f-f9f4-4789-92b7-9dd6e88fcc8d/1/Rq-rAk5RWXscYSwMAl_q3giX08s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/74e17f-f9f4-4789-92b7-9dd6e88fcc8d/1/uRuRUEmDCRUGoalERXpFWLlNq38.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.175.166.0/24
Signature Algorithm: sha256WithRSAEncryption
2d:88:f8:ee:63:c1:9c:35:24:32:ff:93:aa:d0:a3:9c:29:e2:
e0:ef:04:44:35:86:01:ad:dc:38:8c:95:2e:c1:8e:53:95:a2:
07:ff:f5:00:0f:02:3b:be:ff:b7:51:aa:f2:71:09:29:87:90:
3a:64:66:6f:8b:8d:70:99:5a:d6:28:90:4f:b4:26:0e:b4:12:
f0:e0:38:03:52:e1:2c:64:80:ab:ad:75:6e:56:34:95:50:74:
87:f9:5b:ab:65:be:7b:47:8e:d2:fb:3a:ed:ab:d7:13:71:ec:
e8:14:64:01:34:65:2a:93:aa:bf:37:a8:2d:70:d6:22:12:fa:
37:c6:22:69:9b:10:a4:4e:3f:fc:01:a9:55:74:f2:e8:8a:88:
a2:7b:f0:2f:56:f7:7e:97:75:4a:8c:a2:ef:36:1c:bc:6d:d9:
ae:84:22:41:2e:6d:69:e8:77:53:7d:31:7c:ed:fe:19:ee:21:
1d:1f:d9:99:9d:98:7b:94:84:67:89:bb:01:91:ae:41:0b:82:
79:3e:38:5c:28:67:e3:36:66:d9:ad:aa:8b:61:af:54:00:d0:
44:f0:86:53:1f:a9:dd:b5:34:0d:09:d5:69:54:36:2b:71:e8:
94:88:cc:32:ae:46:7d:f8:92:7e:2f:f5:3f:7a:be:df:4d:26:
fc:5e:b0:c6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:17 2023 by rpki-client on console-ams.rpki-client.org